grlauncher.exe

GRETECH

The application grlauncher.exe by GRETECH has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Remove grlauncher.exe - Powered by Reason Core Security
Publisher:
GRETECH  (signed and verified)

MD5:
2b4f154fded6853bc255da95604f558d

SHA-1:
1c876e5664d890cc5aa96bf2abbd7ff885ee0a41

SHA-256:
7fab822d681673e27f8ce9bee922131dacced791d8f523347d7031a5e33884d8

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/5/2016 11:35:54 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.GRETECH.K
14.6.10.17

Remove grlauncher.exe - Powered by Reason Core Security
File size:
135.2 KB (138,416 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\gretech\gomaudio\grlauncher.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
3/6/2012 6:00:00 PM

Valid to:
5/6/2013 6:59:59 PM

Subject:
CN=GRETECH, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=GRETECH, L=Gangnam-gu, S=Seoul, C=KR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5A87D8BD8A1311CDC79E31FB1F452ED1

File PE Metadata
Compilation timestamp:
11/8/2012 12:04:03 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:ACM5AjSTW7+QtqXqgABqfYwY7KybkOsye3J+vLJ4AH3J4AH:PM5AjSTW5oy7KymyL4AHZ4AH

Entry address:
0xEF6B

Entry point:
55, 8B, EC, 6A, FF, 68, 90, 1D, 41, 00, 68, 0E, F3, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, 5F, 57, FF, 15, 0C, 12, 41, 00, 59, 83, 0D, E0, 77, 41, 00, FF, 83, 0D, E4, 77, 41, 00, FF, FF, 15, 08, 12, 41, 00, 8B, 0D, D8, 77, 41, 00, 89, 08, FF, 15, 04, 12, 41, 00, 8B, 0D, D4, 77, 41, 00, 89, 08, A1, 00, 12, 41, 00, 8B, 00, A3, DC, 77, 41, 00, E8, 99, 03, 00, 00, 39, 1D, 00, 62, 41, 00, 75, 0C, 68, 72, F3, 40, 00, FF, 15...
 
[+]

Entropy:
6.2197

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
61 KB (62,464 bytes)

Remove grlauncher.exe - Powered by Reason Core Security